CN101529854B - System for controlling access to a service, and corresponding method, control device, and computer programme - Google Patents
System for controlling access to a service, and corresponding method, control device, and computer programme Download PDFInfo
- Publication number
- CN101529854B CN101529854B CN2007800387559A CN200780038755A CN101529854B CN 101529854 B CN101529854 B CN 101529854B CN 2007800387559 A CN2007800387559 A CN 2007800387559A CN 200780038755 A CN200780038755 A CN 200780038755A CN 101529854 B CN101529854 B CN 101529854B
- Authority
- CN
- China
- Prior art keywords
- access
- station
- service
- privately owned
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 29
- 238000004891 communication Methods 0.000 claims abstract description 17
- 230000008569 process Effects 0.000 claims description 15
- 238000000926 separation method Methods 0.000 claims description 6
- 230000004913 activation Effects 0.000 claims 1
- 230000004807 localization Effects 0.000 abstract 2
- 230000006870 function Effects 0.000 description 19
- 230000007246 mechanism Effects 0.000 description 11
- 238000004590 computer program Methods 0.000 description 5
- 230000000694 effects Effects 0.000 description 4
- 230000005540 biological transmission Effects 0.000 description 3
- 230000008859 change Effects 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 3
- 230000004044 response Effects 0.000 description 3
- 230000001413 cellular effect Effects 0.000 description 2
- GOLXNESZZPUPJE-UHFFFAOYSA-N spiromesifen Chemical compound CC1=CC(C)=CC(C)=C1C(C(O1)=O)=C(OC(=O)CC(C)(C)C)C11CCCC1 GOLXNESZZPUPJE-UHFFFAOYSA-N 0.000 description 2
- 230000003213 activating effect Effects 0.000 description 1
- 230000015572 biosynthetic process Effects 0.000 description 1
- 230000015556 catabolic process Effects 0.000 description 1
- 230000006378 damage Effects 0.000 description 1
- 238000006731 degradation reaction Methods 0.000 description 1
- 239000000835 fiber Substances 0.000 description 1
- 230000010354 integration Effects 0.000 description 1
- 238000005259 measurement Methods 0.000 description 1
- 238000010295 mobile communication Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000002085 persistent effect Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 230000009897 systematic effect Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W48/00—Access restriction; Network selection; Access point selection
- H04W48/02—Access restriction performed under specific conditions
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W60/00—Affiliation to network, e.g. registration; Terminating affiliation with the network, e.g. de-registration
- H04W60/04—Affiliation to network, e.g. registration; Terminating affiliation with the network, e.g. de-registration using triggered events
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Mobile Radio Communication Systems (AREA)
- Sub-Exchange Stations And Push- Button Telephones (AREA)
Abstract
The invention relates to a system for controlling access to a service provided by a communication network operator. According to the invention, such a service can be accessed via a plurality of private network access terminals (HG1, HG2, HG3), such as residential gateways, which are aggregated in an access network dedicated to the service. A separate localisation zone (LA1, LA2, LA3) is associated with each of the private terminals (HG1, HG2, HG3). During a localisation updating procedure initiated by a user terminal, at least one controller (11) associated with the private terminals can implement means for determining the category to which the user belongs, and means for controlling the access of the user terminal to one of the private terminals, according to the determined category, said means being able, in the event of refusal of access of said user terminal to one of said private terminals (HG1, HG2, HG3), to send a refusal message to the terminal, with a reason for rejection which depends on the category determined for the user.
Description
Technical field
The field of the invention is the field of radio communication.More accurately, the present invention relates to be used to control the system of the access of the service that provides for communication network operator.
It especially but not exclusively be applied to the second generation and third generation communication system and the evolution in the future thereof of for example GSM, GPRS and UMTS and also is applied to use the communication system of CDMA (code division multiple access) technology.
Background technology
For example the mobile telephone network of UMTS (Universal Mobile Telecommunications System) network is made up of wireless access network and core net traditionally; This wireless access network comprises a plurality of public access station that is known as the base station, and this core net is disposed for the management of the service that provides and routed the call to the for example fixed network of public switch telephone network, the Internet etc.Such mobile telephone network is generally according to the sub-district tissue, and each sub-district is related with the base station, and its size is geographical as user density, landform, the function of the power of association base station etc. and changing.In the GSM network, for example the neighbor cell of network uses different carrier frequencies.
Each mobile telephone network is managed by operator, and is related with geographic region (being the state traditionally), and identified by the PLMN that is exclusively used in it (PLMN) code.
Portable terminal can only insert the mobile telephone network of the operator management of its reservation, maybe possibly insert its operator with another network of the reciprocal roaming agreement of its signing (reciprocal roaming agreements).After being connected to the PLMN of mandate, portable terminal is kept watch on the signal from each access station of its reception, selects to have the reception signal of best quality, and be attached to (attaches to) this signal from the sub-district.
The terminal is according to carrying out and should keep watch on like the basis of permanent (quasipermanent); The result is; In case it detects the signal of base station of making a fresh start, it just measures some parameter of the signal that receives, has more good quality so that confirm the signal of the sub-district whether this signal recently is currently connected to certainly.If, and if the terminal be in idle pulley, then it can withdraw from its current area, and is attached to it is just receiving better quality signal from it sub-district.
If the terminal is in connection mode (that is, carrying out if call out), then the measurement for neighbor cell is beamed back at the network requests terminal.Network can order portable terminal to change the sub-district then.In fact, when this switching mainly occurs in portable terminal and is just going round, this impel portable terminal to get into leave GSM for example or the UMTS network in its size generally be in 100 meters (m) sub-district in the scope of 30 kms (km).
The current expansion of mobile communications network is located in the integration that provides between fixed-line telephone network (for example public switch telephone network (PSTN) or the Internet) and the mobile network now.
In this context; The form according to the privately owned radio access station that links to each other with ADSL (asynchronous digital subscribe lines) modulator-demodulator or link to each other with any other equipment that provides for the access of high bit rate network (for example FTTH (Fiber to the home) type) (at home or on enterprise's house property (premises)) is for example just being imagined by some operators, to their client as individual or enterprise provide in the family or enterprise's house property on the second generation (2G), the third generation (3G) or ultra three generations (B3G) wireless coverage.Below, for the simple reasons, the combination of the high bit rate network access equipment that the suitable access station of the privately owned radio access station appointment of term is connected to it.
So everyone can have their family wireless access station, this family wireless access station is related with the user list that is authorized to insert it (kinsfolk, friend etc.).Access control mechanism can forbid that user not to be covered inserts this privately owned station in this tabulation.
Similarly, in enterprise's context, enterprise can have one or more radio access stations on its place, will be limited to the for example employee of enterprise for the access of this radio access station, and inaccurate visitor inserts.
Yet, the problem that this type family wireless covers the number of serving the access station that has run into the communication network that increases operator is proposed, a lot of such access stations possibly be added to the base station (public access station) that operator has disposed.
The portable terminal that in the communication network of operator, goes round will frequently detect the new signal near its public or privately owned access station that can attempt adhering to thus it.
Thus; In case all families all are equipped with the signal that the portable terminal that goes round in the block of building up or the building of privately owned access station of this service detects from one of access station and have sufficient level therein, then the terminal will be intended to attempt being attached to one by one each in those stations.
Now, portable terminal is attempted being attached in the stage of radio access station therein, if refusal inserts, then resist this portable terminal and be attached to radio access station, and this portable terminal and then trial adheres to, and can not get in touch this portable terminal from communication network; Be generally in its duration during this time period of one second order of magnitude, this portable terminal that mobile terminal stopping is kept watch in this network is marked as the signal that is transmitted in the zone of connection.
If repeat these too continually for the unsuccessful trial that is attached to privately owned station or base station, then mobile terminal user can be missed incoming call, and this is special trouble.
This has proved that for the mobile terminal user of not subscribing new family wireless covering service be debatable especially.Introduce owing to lack a lot of privately owned access station subscribing and can not be authorized to insert-repeatedly attempt being attached to these privately owned access stations-will disturb the operation of their portable terminal, and make their performance degradation through causing the terminal.
So, existing for following technology requirement, it makes communication network operator can provide new family wireless to cover service to its subscriber, it oneself is not the user of subscriber's network that this new service is not disturbed those.
Summary of the invention
The present invention a kind ofly is used to control for solving this demand via the system of access that a plurality of privately owned access stations are linked into the service of communication network through proposing, and this system comprises:
Be used for said privately owned station is incorporated into the parts of the Access Network (PLMN) that is exclusively used in said service;
Be used for making each related parts at separation point position district (LA) and said privately owned station; With
If the parts of position updating process with regard to activating that user terminal starts take place:
Be used for the affiliated classification of definite said user; With
Be used for controlling of the access of said user terminal to one of said privately owned station as the function of the classification of confirming like this.
In addition, according to the present invention, if refuse the access of said user terminal to one of said privately owned station, then said access control parts are suitable for sending the refuse information that comprises as the resistance reason of the function of the classification of confirming for said user to said terminal.
Therefore; Integral component by means of access control system; The present invention constructs specific Access Network from privately owned (family or enterprise) access station, and the unique identifier that distributes to this specific Access Network is different from the identifier that distributes to the Access Network that comprises the base station of being disposed by operator (public access station).Use GSM or UMTS term, so be different from the PLMN sign indicating number of " macroscopic view " net of (comprise base station that mobile operator disposes) operator to the specific PLMN sign indicating number of this new network allocation that comprises privately owned station that can be described as " microcosmic " net.At 3GPP technical specification TS 24.008 V7.4.0 (2006-06) (" 3
RdGeneration PartnershipProject; Technical Specification Group Core Network and Terminals; Mobile radiointerface Layer 3 specification; Core network protocols; Stage 3 (Release 7) ") " equivalent PLMN " definition aspect, this microcosmic PLMN net can be defined as the network with macroscopical net " equivalence " of operator.
The invention allows for to each privately owned access station (at least for adjacent privately owned access station (if two privately owned access stations with same position district at a distance of very far away, then tolerable they)) distribute different lane place (LA).With reference to above mentioned 3GPP technical specification TS 24.008 V7.4.0, for example its consequence be when the terminal is attempted being attached to family and is stood, triggering mobile terminals location area updating process.
Significantly; According to the present invention; Compare the lane place LA related very little (typically apartment or house-term micro-) in view of the above with the family station with the lane place LA of " grand " network of the operator of the one group of sub-district that for example generally comprises single MSC/VLR (mobile switching centre/visitor location register) management among the GSM.
The present invention has proposed to realize to be used for to control the mechanism to the access at these stations of network at last.
For this reason, system of the present invention comprises that (classification or be not authorized to that this family wireless that for example, is authorized to insert the privately owned station that relates to covers the subscriber of service inserts the user's at this station classification for the parts that make it possible to confirm the classification under this mobile terminal user.In one classification of back, can between the non-subscriber of the subscriber of the mobile operator that does not subscribe the family wireless service of covering and mobile operator, distinguish, i.e. country or international " ramber ").System of the present invention can change the function of access control mechanism as fixed user's classification then, and particularly, for the non-subscriber of this service, carries out and causes minimize destruction and make the access control process that the performance of portable terminal as far as possible littlely is demoted.
The parts of the classification that is used for definite user like this and such access control parts can be arranged directly in privately owned access station, and said privately owned access station is that intelligence and autonomous (autonomous) stand at that time.
They can be included in related with these privately owned access stations one or more in the multi-controller (privately owned access station also can comprise the parts that are used to integrate the PLMN network station at that time alternatively and be used to make the related parts in lane place and those stations) coequally.This embodiment has reduced the load on the privately owned access station and has improved systematic function thus.
They can finally be divided between these two entities: privately owned access station and controller.This has produced the balanced distribution of task; In privately owned access station, keep the function that they can dispose and their performance (for example verifying one of the authorized subscriber at the station whether user relates to) of not slowing down; And consume the function (for example confirm that unauthorized is used for the user's at this station classification, and refuse their and insert) of more resources to the controller transmission as the function of the classification of confirming like this.
And; If the refusing user's terminal is to the access at one of privately owned station; Then cover the non-subscriber who serves to this family wireless and send refuse information, (that is, till portable terminal turn-offs and goes back to connection once more) resisted them like for good and all in comprising the whole network of privately owned access station.Thus; After the unsuccessful trial that is connected to family's access station; The portable terminal of not subscribing the user of this service will not reattempt and be attached to any other the privately owned station that is run into, and the result is its operation bothering the introducing that receive new family wireless covering service relatively littlely.
According to the present invention, confirm under the user classification can based at least one identifier of user and with the comparison of the reference identifier of this service association.
Therefore, controller or privately owned access station can come the subscriber of direct Differentiated Services based on their identifier (for example their IMSI (international mobile subscriber identity)), and this is simply fast, and need not inquire outside subscriber database.Statement knows that for controller or privately owned access station this reference identifier is enough with the reference identifier of this service association in controller or privately owned access station.
In other words, the present invention proposes and use the resistance reason depend on class of subscriber and to distinguish to resist user terminal.
In another embodiment of the present invention, confirm that classification under the user can be based in subscriber's the database of this service to search the user.
This database can be arranged in network, if in system of the present invention, exist more than a controller, then database is concentrated by all privately owned stations and all controllers and can be inquired by them.Therefore, the user who comprises in the database is the subscriber of this service, and opposite, and all users that do not comprise in the database are counted as the non-subscriber of this service.Controller or privately owned access station do not need the reference identifier of stores service then, between the subscriber, to distinguish.
Confirm that the classification under the user also can be based on searching and the two combination of the analysis of user identifier in the database among above-mentioned two embodiment.
In one particular embodiment of the present invention, the parts that are used for confirming class of subscriber are suitable for thus confirming whether said user belongs at least one user's who is authorized to insert said privately owned station tabulation.
Particularly, in order to strengthen the performance of privately owned station or controller, first step is to activate to confirm whether parts belong to the subscriber's at the privately owned station that is authorized to be used to relate to classification with the checking user.Only under the situation of refusal for the access at privately owned station, confirm that parts just are activated to confirm the classification under the user more accurately: this family wireless covers non-subscriber, country or the world " ramber " of service.Then this access-reject message is sent to portable terminal, this access-reject message comprises the specific resistance reason for the classification of confirming like this.
The invention still further relates to the method that the control service that can in system as stated, realize inserts.
The invention still further relates to a kind of device (or controller) that is used to control to the access station of communication network; Wherein, Said access station is the privately owned access station (HG1-HG3) for the service of said network; Said privately owned access station is incorporated in the Access Network that is exclusively used in said service, and each privately owned access station is related with the separation point position district, and said control device is suitable for during the position updating process that user terminal starts, using:
The parts that are used for the affiliated classification of definite said user; With
Be used for controlling the parts of said user terminal to the access at one of said privately owned station as the function of the classification of confirming like this.
The parts that in such control device, adopt are similar with the aforesaid parts in the context of access control system of the present invention.
The invention still further relates to a kind of Access Network of service, this Access Network comprises:
The a plurality of privately owned access station of said service, each privately owned access station is related with the lane place of separating;
At least one controller related with said privately owned station is suitable for during the position updating process that user terminal starts, using:
The parts that are used for the affiliated classification of definite said user; With
Be used for controlling the parts of said user terminal to the access at one of said privately owned station as the function of the classification of confirming like this; If refuse the access of said user terminal to one of said privately owned access station, then said access control parts are suitable for sending the refuse information that comprises as the resistance reason of the function of the classification of confirming for said user to said terminal; With
Said controller is connected at least one IP network at said privately owned station.
The present invention finally relates to a kind of computer program, comprises when said program is carried out by computer, is used to carry out the computer generation code instruction of the step of above-mentioned connection control method.
The invention still further relates to the privately owned access station of system according to the invention.
Description of drawings
Through reading as the following description of the selected one particular embodiment of the present invention of exemplifying non-limiting example and according to accompanying drawing, other advantages of the present invention and characteristic become more obviously clear, wherein:
Fig. 1 illustrates the framework by the of the present invention privately owned access station network of the controller management that serves as the Access Network that is exclusively used in the family wireless service of covering and the gateway between the core net;
Fig. 2 represents the access control mechanism of the present invention in the context of the position updating process that user terminal starts more accurately.
Embodiment
Provide the context of the new service that family wireless covers to the subscriber of operator introducing from privately owned access station; General Principle of the present invention is the structure of following Access Network; It is exclusively used in the service from these home gateways, and its framework provides as the function of class of subscriber and the access control of distinguishing.
It should be noted that in this document, statement " family wireless coverings " refers to can be from the wireless coverage of privately owned radio access station access, its access is limited to some authorized subscriber in family, collective or the enterprise's context.
In context of the present invention, statement " privately owned access station (or home gateway (HG)) " refers to the unit that provides the user's (individuality, association or enterprise) for the wireless access of IP/DSL (Internet protocol/digital subscribe lines) transmission network house property to install from user terminal.The home gateway that this can particularly link to each other with following ADSL network, this ADSL network equipment has 3G UMTS wireless antenna, and is included in the UMTS/IP interface module between wireless antenna and the home gateway.
Carried out by gateway HG oneself and/or in controller, carry out for the access control of these home gateways HG, this controller is the unit of the managing family gateway HG that on the house property of operator, installs.All business of the end user of gateway HG (input and output are professional) are by controller management.
The present invention can be applicable to 2G (GSM, GPRS), 3G (UMTS) cellular network and evolution in the future thereof.
In second generation network, home gateway is similar to the base transceiver station of on client's house property, installing (BTS), and controller class is similar to base station controller (BSC).
In third generation network, home gateway is similar to the Node B of on client's house property, installing.The function that can have the entity associated of common and 3G network alternatively, for example RNC (radio network controller), MSC (moving the main dispatching centre) or SGSN (Serving GPRS Support Node).Controller class is similar to RNC; But in a preferred embodiment of the invention; Controller has the additional function relevant with access control mechanism of the present invention: 3rd level message (3rd level be the network layer of OSI (open system interconnection) model or the Non-Access Stratum in the 3GPP terminology) is explained and generated to controller, 3rd level message transparent transmission between customer mobile terminal and MSC and/or SGSN usually in standard UMTS network.
The remainder of this description is exclusively used in the context of UMTS network and describes one particular embodiment of the present invention.In this embodiment, because the reason related with the performance of home gateway, so in controller, carry out the access control of home gateway.
As selection, can imagine and only in home gateway HG oneself, carry out access control.
Fig. 1 illustrates and is exclusively used in the framework that family wireless covers the Access Network of service, and this Access Network comprises a plurality of home gateways, has wherein described three HG1, HG2 and HG3.
Access control mechanism is realized in home gateway HG1, HG2 and HG3: given gateway HGi is associated with authorizing the UMTS subscriber tabulation (by their IMSI sign) that is used for this gateway.Non-existent subscriber can not be authorized to be used for this gateway in this tabulation.In the context of home gateway, these subscribers can comprise all users that live in the family and some relative or the friend of this family.In the context of enterprise's home gateway, these authorized subscriber corresponding to some of enterprise staff or all.Gateway HG is installed in media center, and the tabulation of authorized subscriber can be corresponding to all members at center.
Gateway HGi (i=1...3) has been assigned with different lane place LAi (i=1...3) (being used for adjacent home gateway at least).Consequently when portable terminal 1 to 4 is attempted being attached to the 3G home gateway, trigger position district renewal process in portable terminal 1 to 4 (described in the 3GPP technical specification TS 24.008 as mentioned above).According to the present invention, compare lane place LAi (i=1...3) thereby very little with the lane place LA of " grand " UMTS network of operator.
Mobile terminal system ground trigger position renewal process makes it possible to realize following access control mechanism, and this mechanism resists and is exclusively used in family wireless and covers the minimum of the Access Network of the service subscriber on maybe unit (being lane place LA).
Home gateway HG1, HG2 and HG3 are organized as and are exclusively used in the Access Network that family wireless covers service, and this Access Network is assigned with the different PLMN sign indicating number of PLMN sign indicating number with " grand " UMTS network of distributing to operator.This PLMN can be declared as and " grand " PLMN " equivalence ".
By means of the statement of the equivalent person's character of PLMN network, subscriber's portable terminal 1 can be attached to have an equal priority with the sub-district of " grand " UMTS network 13 of operator with the related sub-district of home gateway HG1.When portable terminal was connected, portable terminal must be manually or is selected it to want the PLMN that inserts automatically.It confirms its priority P LMN through the PLMN sign indicating number among its IMSI of storage in inquiry its SIM (subscriber identity module) or USIM (UMTS subscriber identity module) card.
Therefore, management is had PLMN sign indicating number 208 01 " grand " UMTS network 13 operator as an example, can principle according to the present invention construct equivalent PLMN from home gateway HG1 to HG3, this network has been assigned with PLMN sign indicating number 208 99.The subscriber's of operator IMSI 208 01 need not be modified subscriber that (perhaps their SIM/USIM card change) be used for this service and be attached to the sub-district of " grand " network 208 01 convertibly or be attached to the related sub-district of home gateway with " grand " network 208 99.Under both of these case, the user can think themselves " at home ", in the network of operator's management that they subscribe.
More accurately, system of the present invention comprise be combined form the Access Network that is exclusively used in the family wireless service of covering home gateway HG1 to HG3, each gateway links to each other with controller 11 via the IP network 10 that for example the Internet or ADSL net.Gateway between the core net 12 of controller 11 formation Access Networks and operator; This Access Network comprises as its a part of home gateway HG1 to HG3, the service that these core net 12 management provide and to the route of the calling of the for example fixed network of public switch telephone network, the Internet etc. (expression among Fig. 1).
Mobile switching centre (MSC) 121, it is in charge of the mobile radio station 1 to 4 in the geographic region of its management, registered and 131 circuit-mode service.
Attaching position register (HLR) 122, it is the database of characteristic of service of information and reservation that comprises relevant user's reservation item and condition; It also comprises the coarse information (for example subscriber be positioned at MSC or SGSN) of relevant subscriber position; With
Serving GPRS Support Node (SGSN) 123, it transmits the data of group mode to the Internet or to intranet networks or to service platform (and vice versa); Data routing gateway 124 via called gateway GPRS Support Node (GGSN) is carried out this connection.
Their effect is identical with those effect and function in traditional UMTS network with function, and therefore here is not described in more detail.
Fig. 1 has also represented " grand " UMTS network of operator according to the form of the Access Network 13 that comprises base station (base station) that can insert from a plurality of customer mobile terminals 131, this Access Network links to each other with core net 12.
Each home gateway HG1 can be linked into one or more subscriber terminal of authorizing to HG3 more.For example; Only authorize portable terminal 1 at gateway HG1 place; And the every other portable terminal of representing among eliminating Fig. 1, no matter they have been subscribed family wireless and cover service (terminal 2 and the 3-4 that authorize respectively at gateway HG2 and HG3 place) and still do not subscribe the family wireless covering and serve (portable terminal 131).
In first embodiment, be stored in the terminal list that given home gateway HGi place is authorized in the controller 11 in private database.
In a second embodiment, this tabulation for example is stored in the database of network, and when it powers up, is loaded onto among the home gateway HGi, makes that home gateway HGi can local this tabulation of storage.
Portable terminal shown in Fig. 1 can be all can with the cellular mobile radio communication terminal of the network service of operator, the PDA(Personal Digital Assistant) of communicating by letter, communication laptop computer or smart phone.These are to be modified to standard UMTS portable terminal available in context of the present invention.
Control realizes in controller 11 to the mechanism of the access of HG3 for gateway HG1, and needs (entails) to distinguish to attempt being attached to the UMTS subscriber of UMTS home gateway system of the present invention, so that resist them differently.
Defined following subscriber's classification, for example:
Subscribe the subscriber (that is the user at the terminal among Fig. 11 to 4) that family wireless covers the mobile operator (UMTS) of service;
Do not subscribe the subscriber of the mobile operator (UMTS) of this service, for example portable terminal 131; With
The non-subscriber of mobile operator (UMTS), promptly international or country " ramber ".
In the context of the position updating process that portable terminal starts, more specifically describe the subscriber with reference to figure 2 and resist mechanism below.Described such position updating process among the 3GPP technical specification TS 24.008 that mentions in the above, should inquire about this technical specification about the more information of its operator scheme.
When customer mobile terminal 20 was attempted being attached to home gateway HG1, HG2 or HG3, customer mobile terminal 20 started these position updating process, and separation point position district LA1 is associated with each home gateway to LA3 because system of the present invention is based on.
Whether the subscriber's who comprises in the user's that controller 11 is authorized through its IMSI relatively with at this gateway place then the tabulation IMSI, the user who confirms portable terminal 20 are included in during the subscriber who is authorized to insert the home gateway that relates to tabulates.In this embodiment, this tabulation is stored in the database in the controller 11, this database comprise the home gateway HGi that is used for related these controller 11 management and the subscriber who is authorized to insert this home gateway HGi one group of identifier IMSI (IMSI, HGi) right.If the user of portable terminal 20 is not included in the tabulation of authorized user, then refuse access (24) for this gateway.
In another embodiment, the tabulation that is authorized to insert the subscriber of home gateway is stored in this terminal self (for example, be stored in the network and when powering up, be downloaded in this station, from performance reason).Under this situation of in Fig. 2, not representing, the position updating request 21 that portable terminal 20 sends is received by home gateway, and home gateway sends identity request (IMSI) message 22 as response to portable terminal 20.IMSI that home gateway relatively receives then and local stored authorized subscriber's tabulation.If the user of portable terminal 20 is not included in the tabulation of authorized subscriber, then refuse access for this gateway.The request 21 from portable terminal 20 is sent to controller 11 then in this station, and it is suitable wherein having its IMSI.
It should be noted, in a second embodiment, comprising correct (proper) access control of division between two nodes of home gateway and controller.
Certainly can imagine other modification and be used to be stored in subscriber's tabulation of authorizing at the gateway place.
In first method, controller 11 is through their the international and national ramber of IMSI sign.IMSI is the persistent identifier that moves of network, and comprises:
The code of subscriber's motherland, their MCC (mobile country code) that promptly on 3 numerals, encodes;
The code of subscriber's specified PLMN, the MNC (mobile network code, MNC) that promptly on 2 numerals, encodes; With
The numbering (MSIN) of the mobile subscriber in the network.
International roaming person has the different MCC of MCC with the network of the operator that relates to.The ramber of country has the identical MCC of MCC with the network of the operator that relates to, and still has different MNC, and this makes controller can identify them.
When controller 11 confirmed that subscriber's MCC that the IMSI of portable terminals 20 has an operator that characteristic is to relate to is with MNC, whether the database in its inquiry core network 12 was subscribed family wireless to home gateway with the user that confirms portable terminal 20 and is covered and serve.When disposing a plurality of controllers and manage all home gateway HG, this type database can be concentrated and inquiry by all controllers.The subscriber who comprises in the database is the subscriber of this service, and subscriber not to be covered is counted as the non-subscriber of this service in the database.
In second method, the same with first method, controller 11 is based on their the international and national ramber of IMSI sign.On the contrary, for the subscriber's with the operator that relates to the MCC and the user of MNC code characteristic, controller 11 identifies those users of this service of reservation as the function of the MSIN among the IMSI.In this embodiment, some in 10 of MSIN numerals has been assigned with characteristic and has been that family wireless covers the value of service.Thus, some IMSI share (tranches) is preserved for the subscriber of this service.If the prefix or a plurality of prefix that are subscriber's reservation of this service are declared in controller 11, then it can distinguish the subscriber of this service based on subscriber's IMSI, and does not inquire external data base.
If following situation, so the then access of 20 pairs of home gateways that relate to of controller 11 refusal (24) portable terminals:
The user of portable terminal 20 is subscribers of operator and has subscribed family wireless covering service, but one of authorized user of the home gateway that does not relate to;
The user of portable terminal 20 is not the subscriber of operator; Or
The user of portable terminal 20 is subscribers of operator but does not subscribe family wireless covering service.
In these cases, controller 11 upgrades resistance message 25 to the position that portable terminal 20 sends the specific reason that comprises resistance, as the function of the classification of confirming for this user.
For example, can use resistance reason # 11, #12, #13 and the #15 of above-mentioned 3GPP technical specification TS 24.008 (§ 4.4.4.7 " Location updatingnot accepted by the network " and appendix G).
Thus; Available reason #11 (" not allowing PLMN ") resists the non-subscriber that country or international roaming person and this family wireless cover service, and its effect is the identifier that the PLMN of the Access Network that is exclusively used in this service in the PLMN tabulation is forbidden in storage in portable terminal 20.Thus, home gateway HG1 in the network of HG3 according to like permanent basis (that is, and up to portable terminal 20 cut off with connect once more till, its effect is to upgrade this tabulation) the non-subscriber of resistance ramber and this service.So their compelled ranks that maintains " grand " UMTS network of operator.When forbid the PLMN tabulation at this in, storing PLMN, no longer measure signal from its sub-district in wireless rank.
Utilize available reason #15 (" not having proper cell in the lane place ") or #12 (" not allowing this lane place ") or #13 (" not allowing in this lane place, to roam ") to resist such other subscriber among the subscriber of this service; So that the home gateway place relating to resists them, but do not locate to stop them at another home gateway (for example their tame home gateways).
So the LA in the lane place (that is, the particular home gateway) locates to stop the user, promptly forbids them.Yet in case near wherein they are listed as their enterprise or the home gateway in the family of authorized user, they can attempt being attached to this home gateway according to normal mode.
So it is effective especially that access control mechanism of the present invention proves, the non-subscriber's of this service portable terminal is not exerted an influence because the family wireless service that covers is installed.After resisting for first of first trial that is connected to home gateway, the non-subscriber of this service does not reattempt and is attached to these home gateways, and therefore the existence of these home gateways no longer bothers them.
Certainly, can imagine the resistance reason those that in above-mentioned 3GPP standard, provide, the reason of mentioning here only as an example.
Those of ordinary skills can be easily be transformed to the situation of wherein in home gateway, carrying out access control exclusively with wherein in controller, carrying out the above description of an embodiment of controlling the access of home gateway as the function of the classification of confirming for the user.The parts that adopt are identical with message with the portable terminal exchange, but in the rank of home gateway and no longer in the rank of controller.
In a specific embodiment of the present invention, confirm the step of connection control method of the present invention through the instruction of the computer program that in the data processing equipment of for example controller 11, merges.This program comprises such program command, loads and when carrying out such program, carries out the step of method of the present invention when being carried out in the device of controlling by this program then in its operation.
As a result, the present invention also is applied to and is suitable for carrying out on the computer program of the present invention, particularly information storage medium or the computer program in the information storage medium.This program can be used any programming language, and adopts the form of the intermediate code (the for example form of part compiling) between source code, object code or source code and the object code, or is used to any other form of realizing that method of the present invention is desired.
Claims (10)
1. one kind is used to control the system that service inserts, it is characterized in that said service can via a plurality of privately owned stations (HG1, HG2, HG3) access communications network, and it is characterized in that said system comprises:
Be used for that (HG1, HG2 HG3) are incorporated into parts in the Access Network that is exclusively used in said service with said privately owned station;
Be used to make the separation point position district (LA1, LA2, LA3) with said privately owned station in each related parts; With
If user terminal (1-4 takes place; 20) start the parts of the position updating process of (21) with regard to activation:
Be used for the affiliated classification of definite said user, said classification depends on that at least the user has subscribed said service and still do not subscribed said service; With
Be used for controlling of the access of said user terminal to one of said privately owned station as the function of the classification of confirming like this; With
It is characterized in that, if refusal (24) said user terminal (1-4; 20) to said privately owned station (HG1, HG2, access one of HG3), then said access control parts are suitable for sending the refuse information (25) that comprises as the resistance reason of the function of the classification of confirming for said user to said terminal.
2. according to the system of claim 1, it is characterized in that said definite parts comprise at least one identifier of being used for this user relatively and with the parts of the reference identifier of this service association.
3. according to the system of claim 2, it is characterized in that said definite parts comprise that also the database that is used for the subscriber of this service searches user's parts.
4. according to the system of claim 1, it is characterized in that said definite parts are suitable for confirming whether said user is included at least one user's who is authorized to insert said privately owned station the tabulation.
5. according to the system of claim 1, it is characterized in that this system comprises at least one controller (11) related with said privately owned station, is suitable for using said classification to confirm parts and said access control parts.
6. according to the system of claim 1, it is characterized in that said classification confirms that parts and said access control parts are included in the said privately owned station.
7. according to the system of claim 1, the parts that it is characterized in that said parts that are used for confirming the classification under the said user and the said access that is used to control said user terminal are by through at least one controller (11) realization related with said privately owned station of at least one IP network.
8. one kind is used to control the method that service inserts, and it is characterized in that said service can be via a plurality of privately owned stations (HG1-HG3) access communications network, and it is characterized in that said method comprises:
Be used for said privately owned station (HG1-HG3) is incorporated into the step of the Access Network that is exclusively used in said service;
Be used for making each related step at separation point position district (LA1-LA3) and said privately owned station;
If the position updating process that user terminal (20) starts (21) takes place, then:
Be used for the step of the affiliated classification of definite said user, said classification depends on that at least the user has subscribed said service and still do not subscribed said service; With
Be used for controlling the step of said user terminal to the access at one of said privately owned station as the function of the classification of confirming like this; With
It is characterized in that; If refusal (24) said user terminal is to said privately owned station (HG1; HG2, access one of HG3), then said access control step comprises to said terminal sends the refuse information (25) that comprises as the resistance reason of the function of the classification of confirming for said user.
9. device (11) that is used to control to the access station of communication network; It is characterized in that; Said access station is the privately owned access station (HG1-HG3) for the service of said network; Said privately owned access station is integrated in the Access Network that is exclusively used in said service, and each privately owned access station is related with separation point position district (LA1-LA3), and said control device (11) is suitable for during user terminal (20) starts the position updating process of (21), using:
Be used for the parts of the affiliated classification of definite said user, said classification depends on that at least the user has subscribed said service and still do not subscribed said service; With
Be used for controlling the parts of said user terminal to the access at one of said privately owned station as the function of the classification of confirming like this; With
It is characterized in that, if refusal (24) said user terminal (1-4; 20) to said privately owned station (HG1, HG2, access one of HG3), then said access control parts are suitable for sending the refuse information (25) that comprises as the resistance reason of the function of the classification of confirming for said user to said terminal.
10. access station to communication network; It is characterized in that; Said access station is the privately owned access station that belongs to for one group of privately owned access station of the service of said network; Said privately owned access station is integrated in the Access Network that is exclusively used in said service, and each privately owned access station is related with diverse location district (LA1-LA3), and it is characterized in that said access station is suitable for during user terminal (20) starts the position updating process of (21), using:
Be used for the parts of the affiliated classification of definite said user, said classification depends on that at least the user has subscribed said service and still do not subscribed said service; With
Be used for controlling the parts of said user terminal to the access at one of said privately owned station as the function of the classification of confirming like this; If refusal (24) said user terminal is to said privately owned station (HG1; HG2; One of HG3) access, then said access control parts are suitable for sending the refuse information (25) that comprises as the resistance reason of the function of the classification of confirming for said user to said terminal.
Applications Claiming Priority (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| FR0654328 | 2006-10-17 | ||
| FR0654328 | 2006-10-17 | ||
| PCT/FR2007/052169 WO2008047041A2 (en) | 2006-10-17 | 2007-10-16 | System for controlling access to a service, and corresponding method, control device, and computer programme |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101529854A CN101529854A (en) | 2009-09-09 |
| CN101529854B true CN101529854B (en) | 2012-12-26 |
Family
ID=38266672
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2007800387559A Active CN101529854B (en) | 2006-10-17 | 2007-10-16 | System for controlling access to a service, and corresponding method, control device, and computer programme |
Country Status (5)
| Country | Link |
|---|---|
| US (1) | US8787885B2 (en) |
| EP (1) | EP2090056B1 (en) |
| JP (1) | JP5148618B2 (en) |
| CN (1) | CN101529854B (en) |
| WO (1) | WO2008047041A2 (en) |
Families Citing this family (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| DE202005021930U1 (en) * | 2005-08-01 | 2011-08-08 | Corning Cable Systems Llc | Fiber optic decoupling cables and pre-connected assemblies with toning parts |
| GB2447442A (en) | 2007-02-23 | 2008-09-17 | Ubiquisys Ltd | Base station for cellular communication system |
| KR101472749B1 (en) | 2008-09-25 | 2014-12-16 | 삼성전자주식회사 | METHOD AND APPARATUS FOR UE ADMISSION CONTROL IN HOME eNB |
| GB2466452A (en) * | 2008-12-18 | 2010-06-23 | Ubiquisys Ltd | A base station, for a cellular communication network |
| FR2966686B1 (en) | 2010-10-22 | 2014-04-04 | Radiotelephone Sfr | METHOD FOR CONTROLLING A FEMTO HOUSING INSTALLED OUT OF THE TERRITORY OF AN OPERATOR |
| FR2966673B1 (en) | 2010-10-22 | 2014-04-04 | Radiotelephone Sfr | METHOD FOR SIGNALING A USER OF THE CONNECTION OF ITS MOBILE TELEPHONE WITH A FEMTO BOX AND FEMTO BOX |
| FR2970141B1 (en) | 2010-12-29 | 2013-07-26 | Radiotelephone Sfr | METHOD AND SYSTEM FOR GEOLOCATION OF EQUIPMENT BELONGING TO A NETWORK, FOR EXAMPLE A FEMTO HOUSING |
| JP2015517749A (en) * | 2012-05-04 | 2015-06-22 | ティー‐モバイル・チェク・リパブリック・アー・エス | Method of using femtocell base station and user equipment in terrestrial public mobile network, femtocell base station, terrestrial public mobile network, program, and computer program product |
| CN105516376B (en) * | 2014-09-24 | 2020-09-08 | 中兴通讯股份有限公司 | Control method for mobile terminal to access home gateway and home gateway |
| CN111600686B (en) * | 2019-02-01 | 2021-12-31 | 华为技术有限公司 | Communication method and device |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2000054537A2 (en) * | 1999-03-09 | 2000-09-14 | Nokia Networks Oy | Camping in an exclusive cell |
| CN1310905A (en) * | 1999-07-14 | 2001-08-29 | 信息产业部武汉邮电科学研究院 | Data transmission apparatus and method for transmitting data between physical layer side device and network layer device |
Family Cites Families (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP3441726B2 (en) * | 1990-11-30 | 2003-09-02 | 株式会社日立製作所 | Communication device and communication method |
| GB2315193B (en) * | 1996-07-10 | 2000-11-15 | Orange Personal Comm Serv Ltd | Mobile communications system |
| US20020111166A1 (en) * | 2001-02-12 | 2002-08-15 | Opuswave Network, Inc. | Method and system for selecting a prefer red cell in a wireless communication system |
| CN1251525C (en) * | 2001-10-01 | 2006-04-12 | 株式会社Ntt都科摩 | Resources controlling method, mobile communication system, base station and mobile station |
| WO2003096732A1 (en) | 2002-05-08 | 2003-11-20 | Siemens Aktiengesellschaft | Method for registering a mobile communications device for a radio coverage area of a mobile radio system and corresponding mobile radio system |
| JP4318520B2 (en) * | 2003-09-26 | 2009-08-26 | 富士通株式会社 | Terminal status control system |
| US8179847B2 (en) * | 2008-05-13 | 2012-05-15 | At&T Mobility Ii Llc | Interactive white list prompting to share content and services associated with a femtocell |
-
2007
- 2007-10-16 JP JP2009532867A patent/JP5148618B2/en active Active
- 2007-10-16 CN CN2007800387559A patent/CN101529854B/en active Active
- 2007-10-16 EP EP07858595.7A patent/EP2090056B1/en active Active
- 2007-10-16 US US12/442,783 patent/US8787885B2/en active Active
- 2007-10-16 WO PCT/FR2007/052169 patent/WO2008047041A2/en active Application Filing
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2000054537A2 (en) * | 1999-03-09 | 2000-09-14 | Nokia Networks Oy | Camping in an exclusive cell |
| CN1310905A (en) * | 1999-07-14 | 2001-08-29 | 信息产业部武汉邮电科学研究院 | Data transmission apparatus and method for transmitting data between physical layer side device and network layer device |
Also Published As
| Publication number | Publication date |
|---|---|
| JP2010507308A (en) | 2010-03-04 |
| WO2008047041A3 (en) | 2008-09-12 |
| CN101529854A (en) | 2009-09-09 |
| JP5148618B2 (en) | 2013-02-20 |
| EP2090056A2 (en) | 2009-08-19 |
| WO2008047041A2 (en) | 2008-04-24 |
| EP2090056B1 (en) | 2017-09-27 |
| US20100081413A1 (en) | 2010-04-01 |
| US8787885B2 (en) | 2014-07-22 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101529854B (en) | System for controlling access to a service, and corresponding method, control device, and computer programme | |
| CN101836474B (en) | Self-configuring small scale base station | |
| US10034232B2 (en) | Subscriber identification management broker for fixed/mobile networks | |
| CN101808388B (en) | Methods and apparatus for selecting communication network | |
| CN101422065B (en) | Private base station with exclusivity | |
| CN102804821B (en) | For upgrading the method and apparatus of the rule of the switching controlling virtual SIM contract of service | |
| CN104285474B (en) | PLMN systems of selection | |
| CN101951670B (en) | Data-capable network prioritization with reject code handling | |
| CN1902976B (en) | Data-capable network prioritization with reduced delays in data service | |
| CN101669327B (en) | A method and device of accessing control | |
| US6556842B1 (en) | Method and apparatus in a telecommunications network | |
| US20100144362A1 (en) | Method of configuring a station for accessing a service and an associated controller, access network, access station, and computer program | |
| US20100216426A1 (en) | User-Customized Mobility Method and System in a Mobile Communication System | |
| CN103026754A (en) | Method and apparatus for performing soft switch of virtual SIM service contracts | |
| CN102325358A (en) | Method and apparatus for packet data service discovery | |
| RU2625951C2 (en) | Control of identity data of mobile devices | |
| AU2014227509A1 (en) | Subscriber Identification Management Broker for Fixed/Mobile Networks | |
| US20220322069A1 (en) | Establishing and maintaining cellular data communication using remote subscriber identification module profile | |
| CN101500226B (en) | Geological region allocation method and system in household base station network | |
| KR101537392B1 (en) | Minimizing the signaling traffic for home base stations | |
| US20230319756A1 (en) | Disaster roaming for plmn | |
| US20220322068A1 (en) | Establishing and maintaining cellular data communication using remote subscriber identification module profile | |
| WO2011030767A1 (en) | Mobile communication system, base station, and base station selecting method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C56 | Change in the name or address of the patentee | ||
| CP01 | Change in the name or title of a patent holder |
Address after: France Patentee after: Ao Lanzhi Address before: France Patentee before: France Telecom |
|
| C41 | Transfer of patent application or patent right or utility model | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20161010 Address after: Luxemburg Luxemburg Patentee after: 3G patent licensing Limited by Share Ltd Address before: France Patentee before: Ao Lanzhi |